VDB

GCVE-110-MAGEIA-2019-79

GCVE-110-MAGEIA-2019-79
Advisory Published
Vulnetix · Advisory published February 14, 2019
It was found that logback is vulnerable to a deserialization issue. Logback can be configured to allow remote logging through SocketServer/ServerSocketReceiver interfaces that can accept untrusted serialized data. Authenticated attackers on the adjacent network can leverage this vulnerability to execute arbitrary code through deserialization of custom gadget chains (CVE-2017-5929).

Affected Products

VendorProductVersionsPlatforms
Mageiapython-voevent-parse0 (affected), 1.0.1-2.1.mga6 (unaffected)
Mageialogback1.1.3-2.1.mga6 (unaffected), 0 (affected), 1.1.3-2.1.mga6 (unaffected), 0 (affected)

Browse GCVE Records

73,118 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›